CVSS: 7.8EPSS: 0%CPEs: 323EXPL: 0CVE-2024-42420
https://notcve.org/view.php?id=CVE-2024-42420
25 Oct 2024 — Sharp and Toshiba Tec MFPs contain multiple Out-of-bounds Read vulnerabilities, due to improper processing of keyword search input and improper processing of SOAP messages. Crafted HTTP requests may cause affected products crashed. • https://jvn.jp/en/vu/JVNVU95063136 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 1CVE-2024-36251 – Sharp Multi-Function Printer 18 Vulnerabilities
https://notcve.org/view.php?id=CVE-2024-36251
04 Jul 2024 — The web interface of the affected devices process some crafted HTTP requests improperly, leading to a device crash. More precisely, a crafted parameter to billcodedef_sub_sel.html is not processed properly and device-crash happens. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]. La interfaz web de los dispositivos afectados procesa incorrectamente algunas solicitudes HTTP manipuladas, lo que pro... • https://packetstorm.news/files/id/179363 • CWE-125: Out-of-bounds Read •
CVSS: 9.1EPSS: 0%CPEs: 316EXPL: 0CVE-2022-45796 – SHARP Multifunction Printer - Command Injection
https://notcve.org/view.php?id=CVE-2022-45796
16 Dec 2022 — Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s Digital Full-color Multifunctional System 202 or earlier, 120 or earlier, 600 or earlier, 121 or earlier, 500 or earlier, 402 or earlier, 790 or earlier, and Digital Multifunctional System (Monochrome) 200 or earlier, 211 or earlier, 102 or earlier, 453 or earlier, 400 or earlier, 202 or earlier, 602 or earlier, 500 or earlier, 401 or earlier allows remote attackers to execute arbitrary commands via unspecified vec... • http://seclists.org/fulldisclosure/2024/Jul/0 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •